This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3138392e32352e302f32342d3234203d3e20313336373837.roa File: 3138352e3138392e32352e302f32342d3234203d3e20313336373837.roa (raw, json) Hash identifier: ij89ka3l+AyU18h1lUWko32+xthQh9SXG8GVvzcjJmA= Subject key identifier: CF:55:57:B0:1A:BD:50:B6:34:CE:8F:E4:1B:86:0C:20:54:2B:46:40 Certificate issuer: /CN=088469d1a33085ff88b3e599d223ca74c2313a3a Certificate serial: 053AFCED0675580F3C46DAF2D9F1E2BCDAFDD271 Authority key identifier: 08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3138392e32352e302f32342d3234203d3e20313336373837.roa Signing time: Mon 01 Dec 2025 15:50:06 +0000 ROA not before: Mon 01 Dec 2025 15:45:06 +0000 ROA not after: Mon 30 Nov 2026 15:50:06 +0000 asID: 136787 IP address blocks: 185.189.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.mft rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 05:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:3a:fc:ed:06:75:58:0f:3c:46:da:f2:d9:f1:e2:bc:da:fd:d2:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=088469d1a33085ff88b3e599d223ca74c2313a3a Validity Not Before: Dec 1 15:45:06 2025 GMT Not After : Nov 30 15:50:06 2026 GMT Subject: CN=CF5557B01ABD50B634CE8FE41B860C20542B4640 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:c7:16:6e:7f:da:18:aa:96:62:13:ce:f3:a3: 3a:f3:53:1c:75:ed:74:6e:ee:0c:e2:9d:51:c6:1c: 13:a2:33:bc:40:6b:21:d1:77:4a:0e:07:d7:5b:34: 3e:cb:e9:b7:74:53:6a:46:5b:97:8b:46:c8:2a:d2: c4:ef:e4:f6:ea:c8:b5:1b:7e:7e:51:e8:2c:2c:f7: 08:e6:04:61:74:88:47:25:15:e7:8a:1a:53:6d:c8: c1:71:67:b9:ee:7f:94:19:40:db:83:0a:13:c1:fe: 7b:b1:dc:a4:cb:58:ae:23:d1:84:8a:00:c2:e6:fa: fb:f4:eb:9e:60:c7:0e:2c:8d:26:2f:ef:57:f9:f6: 1a:8b:70:79:26:3b:71:58:24:27:a5:f8:c1:ca:a5: 68:55:37:c0:48:47:77:e6:2e:13:5b:60:82:e6:bb: fa:7e:c5:bd:0b:1f:ad:7a:f9:96:b3:ff:b0:c0:0c: 44:8e:d1:8e:b9:d5:33:02:26:72:a9:a9:2f:c6:e5: 50:ac:6a:6d:9a:aa:e4:07:92:d1:7d:fe:6c:3b:65: 73:3d:f5:71:40:62:b0:9e:89:cc:6e:81:d6:d3:8e: 48:37:d5:0a:4f:ce:6d:ae:e6:5a:0b:f1:b1:2a:ca: ef:df:d3:59:3e:76:08:d7:b6:e5:2d:d4:c6:87:77: 00:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:55:57:B0:1A:BD:50:B6:34:CE:8F:E4:1B:86:0C:20:54:2B:46:40 X509v3 Authority Key Identifier: keyid:08:84:69:D1:A3:30:85:FF:88:B3:E5:99:D2:23:CA:74:C2:31:3A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/088469D1A33085FF88B3E599D223CA74C2313A3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIRp0aMwhf-Is-WZ0iPKdMIxOjo.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/5/3138352e3138392e32352e302f32342d3234203d3e20313336373837.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.189.25.0/24 Signature Algorithm: sha256WithRSAEncryption 56:8a:5b:f0:48:c5:7a:eb:46:07:97:ba:56:6d:33:ad:59:fa: 5f:d1:a3:3f:d2:73:80:52:61:a1:aa:e8:71:ff:3b:b0:00:5c: 97:4b:f7:db:f6:f7:fd:65:d1:6a:a1:69:35:bf:c2:2b:2b:5c: 30:94:bf:e8:f6:3e:2b:31:cb:a7:4b:1c:d9:91:a1:d7:c1:f6: 7d:ec:cb:50:5a:e3:ca:87:2f:11:06:06:9a:c5:a4:c7:9c:96: 11:3d:e8:a9:11:17:05:41:82:0e:5f:8f:2c:fa:6a:78:c3:e7: 38:64:fc:8d:5a:fb:8e:d0:60:ec:6e:f5:00:98:cf:da:34:5c: ed:8a:81:0f:0e:f2:0a:12:36:c3:52:95:6c:53:7b:67:1c:e6: 27:e5:d0:72:a8:c4:04:d7:a0:43:8a:3a:4d:97:e9:1a:27:0f: e2:ee:34:24:e4:ae:2f:f5:e0:47:45:19:d1:c7:4b:43:30:60: 2b:62:91:3f:59:85:56:51:c0:78:fb:45:a5:f6:31:00:25:21: 17:da:68:c7:83:a9:98:ab:f8:54:15:f4:12:d7:a6:5d:2b:ff: e2:bc:a9:04:62:68:07:73:f0:3f:a9:c5:52:75:b7:6c:e4:f2: bc:46:d9:80:b0:73:91:a3:ac:5e:8b:86:f3:30:c3:bc:8c:a6: 15:5c:a1:77 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUBTr87QZ1WA88Rtry2fHivNr90nEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDg4NDY5ZDFhMzMwODVmZjg4YjNlNTk5ZDIyM2NhNzRj MjMxM2EzYTAeFw0yNTEyMDExNTQ1MDZaFw0yNjExMzAxNTUwMDZaMDMxMTAvBgNV BAMTKENGNTU1N0IwMUFCRDUwQjYzNENFOEZFNDFCODYwQzIwNTQyQjQ2NDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZxxZuf9oYqpZiE87zozrzUxx1 7XRu7gzinVHGHBOiM7xAayHRd0oOB9dbND7L6bd0U2pGW5eLRsgq0sTv5PbqyLUb fn5R6Cws9wjmBGF0iEclFeeKGlNtyMFxZ7nuf5QZQNuDChPB/nux3KTLWK4j0YSK AMLm+vv0655gxw4sjSYv71f59hqLcHkmO3FYJCel+MHKpWhVN8BIR3fmLhNbYILm u/p+xb0LH616+Zaz/7DADESO0Y651TMCJnKpqS/G5VCsam2aquQHktF9/mw7ZXM9 9XFAYrCeicxugdbTjkg31QpPzm2u5loL8bEqyu/f01k+dgjXtuUt1MaHdwB9AgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUz1VXsBq9ULY0zo/kG4YMIFQrRkAwHwYDVR0j BBgwFoAUCIRp0aMwhf+Is+WZ0iPKdMIxOjowDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzUvMDg4NDY5RDFBMzMwODVGRjg4QjNFNTk5RDIyM0NBNzRDMjMxM0EzQS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0NJUnAwYU13aGYtSXMtV1owaVBLZE1J eE9qby5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzUvMzEzODM1MmUzMTM4MzkyZTMy MzUyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMTMzMzYzNzM4Mzcucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAC5vRkwDQYJKoZIhvcNAQELBQADggEBAFaKW/BIxXrrRgeXulZtM61Z+l/Roz/S c4BSYaGq6HH/O7AAXJdL99v29/1l0WqhaTW/wisrXDCUv+j2Pisxy6dLHNmRodfB 9n3sy1Ba48qHLxEGBprFpMeclhE96KkRFwVBgg5fjyz6anjD5zhk/I1a+47QYOxu 9QCYz9o0XO2KgQ8O8goSNsNSlWxTe2cc5ifl0HKoxATXoEOKOk2X6RonD+LuNCTk ri/14EdFGdHHS0MwYCtikT9ZhVZRwHj7RaX2MQAlIRfaaMeDqZir+FQV9BLXpl0r /+K8qQRiaAdz8D+pxVJ1t2zk8rxG2YCwc5GjrF6LhvMww7yMphVcoXc= -----END CERTIFICATE-----Generated at Fri Dec 5 13:12:36 2025 by rpki-client